Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 16 Oct 2004 16:41:15 -0400
From:      "Haulmark, Chris" <chris@sigd.net>
To:        <freebsd-ports@freebsd.org>
Subject:   Amavisd-new and clamav user/group permissions conflictions?
Message-ID:  <6FC9F9894A9F8C49A722CF9F2132FC22021564CD@ms05.mailstreet2003.net>
next in thread | raw e-mail | index | archive | help 
I installed security/amavisd-new (2.1.2,1) and chose security/clamav =
(0.80.r4)
as my antivirus solution.

In the /usr/local/etc/clamd.conf, it had clamav as the default user for =
clamd
to be running under.  /usr/local/etc/amavisd.conf shows vscan as the =
default
user.

-----------------
%ls -alh /var/amavis/
total 12
drwxr-x---   5 vscan  vscan  512B Oct 16 15:23 .
drwxr-xr-x  24 root   wheel  512B Oct 16 14:02 ..
drwx------   2 vscan  vscan  512B Oct 16 16:10 .spamassassin
-rw-r-----   1 vscan  vscan   0B Oct 16 16:10 amavisd-24661.lock
-rw-r-----   1 vscan  vscan   6B Oct 16 15:23 amavisd.pid
drwxr-x---   2 vscan  vscan  512B Oct 16 15:23 db
drwxr-x---   4 vscan  vscan  512B Oct 16 16:10 tmp
%
-----------------

%ls -alh /var/run | grep clamav
drwxr-xr-x   2 clamav  clamav    512B Oct 16 16:09 clamav
%

-----------------

%ps -aux | grep clamd
clamav    24914  0.0  1.2  6808 6348  ??  Ss    4:29PM   0:00.00 =
/usr/local/sbin/clamd

-----------------

%ps -aux | grep amavisd
vscan     24664  0.0  6.2 33856 32128  ??  I     3:23PM   0:00.50 =
amavisd (ch2-avail) (perl)
vscan     24663  0.0  6.2 34012 32192  ??  I     3:23PM   0:00.86 =
amavisd (ch2-avail) (perl)
vscan     24662  0.0  6.2 32952 31852  ??  Ss    3:23PM   0:01.19 =
amavisd (master) (perl)

-----------------

%cat /var/log/maillog | grep ClamAV | grep denied
Oct 16 16:02:03 xxxxxxxx amavis[24664]: (24664-02) ask_av (ClamAV-clamd) =
FAILED - unexpected result: =
/var/amavis/tmp/amavis-20041016T160203-24664/parts: Access denied. =
ERROR\n
%

-----------------

I could solve this by changing the default user of clamd.conf to vscan =
then change the
ownership of /var/run/clamav/ to vscan.

I am still not sure if this is by design or actual a confliction and if =
I should submit
a fix for the first time myself.
 =20
--
Chris Haulmark
System Admin. Freelancer
"In market for IT corrections for a salary."

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6FC9F9894A9F8C49A722CF9F2132FC22021564CD>